CVE-2019-2708

Опубликовано: 23 апр. 2019

Источник: redhat

CVSS3: 3.3

Описание

Vulnerability in the Data Store component of Oracle Berkeley DB. Supported versions that are affected are Prior to 6.138, prior to 6.2.38 and prior to 18.1.32. Easily exploitable vulnerability allows low privileged attacker having Local Logon privilege with logon to the infrastructure where Data Store executes to compromise Data Store. Successful attacks of this vulnerability can result in unauthorized ability to cause a partial denial of service (partial DOS) of Data Store. CVSS 3.0 Base Score 3.3 (Availability impacts). CVSS Vector: (CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L).

Затронутые пакеты

Платформа	Пакет	Состояние	Рекомендация	Релиз
Red Hat Enterprise Linux 5	db4	Out of support scope
Red Hat Enterprise Linux 6	db4	Out of support scope
Red Hat Enterprise Linux 7	libdb	Fix deferred
Red Hat Enterprise MRG 3	libdb	Out of support scope
Red Hat JBoss Enterprise Application Platform 5	db4	Out of support scope
Red Hat JBoss Enterprise Application Platform 6	db4	Out of support scope
Red Hat JBoss Enterprise Web Server 2	db4	Out of support scope
Red Hat JBoss Fuse Service Works 6	BDBJE	Out of support scope
Red Hat Enterprise Linux 8	libdb	Fixed	RHSA-2021:1675	18.05.2021
Red Hat Enterprise Linux 8	libdb	Fixed	RHSA-2021:1675	18.05.2021

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Low

Дефект:

CWE-284

https://bugzilla.redhat.com/show_bug.cgi?id=1853242libdb: Denial of service in the Data Store component

3.3 Low

CVSS3

Связанные уязвимости

CVE-2019-2708

CVSS3: 3.3

nvd

больше 6 лет назад

CVE-2019-2708

CVSS3: 3.3

msrc

больше 4 лет назад

Описание отсутствует

SUSE-SU-2022:4289-1

suse-cvrf

около 3 лет назад

Security update for libdb-4_8

SUSE-SU-2022:4214-1

suse-cvrf

около 3 лет назад

Security update for libdb-4_8

RLSA-2021:1675

rocky

больше 4 лет назад

Low: libdb security update

3.3 Low

CVSS3